support.brightfocus.org
- Brightfocus Foundation (Brightfocus Foundation, Inc.) -
Issued by GeoTrust EV RSA CA 2018
About this certificate
This digital certificate with serial number 0a:b4:bc:8f:8c:e7:43:89:c0:4c:ef:2c:e9:a9:80:47 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Brightfocus Foundation (Brightfocus Foundation, Inc.)
Company registration number:
731387
Organization: Brightfocus Foundation (Brightfocus Foundation, Inc.)
Organization unit: Support
Organization: Brightfocus Foundation (Brightfocus Foundation, Inc.)
Organization unit: Support
State / Province:
Maryland
Locality: Clarksburg
Country: US
Locality: Clarksburg
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:b4:bc:8f:8c:e7:43:89:c0:4c:ef:2c:e9:a9:80:47Serial Number (int): 14230717858625635934947830357044068423
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 71:81:07:ac:7f:9f:6a:7e:97:17:84:26:0d:41:83:b1:a3:34:c8:d1
AuthorityKeyId: ca:92:67:52:61:de:ae:fc:ba:22:2b:7f:1c:87:4c:25:fb:6f:99:58
Fingerprint (sha1): ca:d2:ec:a9:6d:22:46:8d:8c:0e:d1:3c:13:79:e6:ed:ec:9b:42:36
Fingerprint (sha256): 62:21:e7:04:3d:7e:28:6d:11:78:ad:dd:03:e6:47:97:3c:a4:12:45:13:1d:ff:d2:ca:cd:d8:80:00:7b:78:fc
Issuing Certificate URL: http://cacerts.geotrust.com/GeoTrustEVRSACA2018.crt
Revocation information
OCSP Server: http://status.geotrust.comCRL Distribution Point: http://cdp.geotrust.com/GeoTrustEVRSACA2018.crl
Check the revocation status for certificate support.brightfocus.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for support.brightfocus.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
support.brightfocus.org
Other certificates including the domain name brightfocus.org
(limited to 100 certificates)
utm.brightfocus.org
securedns1.planmygift.org
support.brightfocus.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
5724160613416960-fe2.pantheonsite.io
securedns1.planmygift.org
support1.brightfocus.org
support.brightfocus.org
securedns1.planmygift.org
5724160613416960-fe2.pantheonsite.io
securedns1.planmygift.org
brightfocus.org
5724160613416960-fe2.pantheonsite.io
securedns1.planmygift.org
support1.brightfocus.org
securedns1.planmygift.org
forms.theelenigroup.com
forms.im4u.world
form.clash-event.co.kr
utm.brightfocus.org
securedns1.planmygift.org
securedns1.planmygift.org
5724160613416960-fe2.pantheonsite.io
support.brightfocus.org
register.brightfocus.org
support.brightfocus.org
securedns1.planmygift.org
register.brightfocus.org
utm.brightfocus.org
securedns1.planmygift.org
securedns1.planmygift.org
brightfocus.org
5724160613416960-fe2.pantheonsite.io
support.brightfocus.org
autod.alsubaihisons.com
brightfocus.org
forms.im4u.world
5724160613416960-fe2.pantheonsite.io
5724160613416960-fe2.pantheonsite.io
5724160613416960-fe2.pantheonsite.io
support.brightfocus.org
support1.brightfocus.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
brightfocus.org
securedns1.planmygift.org
securedns1.planmygift.org
support1.brightfocus.org
5724160613416960-fe2.pantheonsite.io
support.brightfocus.org
donate.brightfocus.org
securedns1.planmygift.org
securedns1.planmygift.org
science.brightfocus.org
support.brightfocus.org
5724160613416960-fe2.pantheonsite.io
brightfocus.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
5724160613416960-fe2.pantheonsite.io
science.brightfocus.org
bffex2016.ahaf.org
form.clash-event.co.kr
5724160613416960-fe2.pantheonsite.io
science.brightfocus.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
5724160613416960-fe2.pantheonsite.io
events.brightfocus.org
support.brightfocus.org
5724160613416960-fe2.pantheonsite.io
autod.alsubaihisons.com
support.brightfocus.org
brightfocus.org
5724160613416960-fe2.pantheonsite.io
5724160613416960-fe2.pantheonsite.io
securedns1.planmygift.org
5724160613416960-fe2.pantheonsite.io
securedns1.planmygift.org
brightfocus.org
5724160613416960-fe2.pantheonsite.io
5724160613416960-fe2.pantheonsite.io
5724160613416960-fe2.pantheonsite.io
form.clash-event.co.kr
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
events.brightfocus.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
support.brightfocus.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
5724160613416960-fe2.pantheonsite.io
securedns1.planmygift.org
support1.brightfocus.org
support.brightfocus.org
securedns1.planmygift.org
5724160613416960-fe2.pantheonsite.io
securedns1.planmygift.org
brightfocus.org
5724160613416960-fe2.pantheonsite.io
securedns1.planmygift.org
support1.brightfocus.org
securedns1.planmygift.org
forms.theelenigroup.com
forms.im4u.world
form.clash-event.co.kr
utm.brightfocus.org
securedns1.planmygift.org
securedns1.planmygift.org
5724160613416960-fe2.pantheonsite.io
support.brightfocus.org
register.brightfocus.org
support.brightfocus.org
securedns1.planmygift.org
register.brightfocus.org
utm.brightfocus.org
securedns1.planmygift.org
securedns1.planmygift.org
brightfocus.org
5724160613416960-fe2.pantheonsite.io
support.brightfocus.org
autod.alsubaihisons.com
brightfocus.org
forms.im4u.world
5724160613416960-fe2.pantheonsite.io
5724160613416960-fe2.pantheonsite.io
5724160613416960-fe2.pantheonsite.io
support.brightfocus.org
support1.brightfocus.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
brightfocus.org
securedns1.planmygift.org
securedns1.planmygift.org
support1.brightfocus.org
5724160613416960-fe2.pantheonsite.io
support.brightfocus.org
donate.brightfocus.org
securedns1.planmygift.org
securedns1.planmygift.org
science.brightfocus.org
support.brightfocus.org
5724160613416960-fe2.pantheonsite.io
brightfocus.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
5724160613416960-fe2.pantheonsite.io
science.brightfocus.org
bffex2016.ahaf.org
form.clash-event.co.kr
5724160613416960-fe2.pantheonsite.io
science.brightfocus.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
5724160613416960-fe2.pantheonsite.io
events.brightfocus.org
support.brightfocus.org
5724160613416960-fe2.pantheonsite.io
autod.alsubaihisons.com
support.brightfocus.org
brightfocus.org
5724160613416960-fe2.pantheonsite.io
5724160613416960-fe2.pantheonsite.io
securedns1.planmygift.org
5724160613416960-fe2.pantheonsite.io
securedns1.planmygift.org
brightfocus.org
5724160613416960-fe2.pantheonsite.io
5724160613416960-fe2.pantheonsite.io
5724160613416960-fe2.pantheonsite.io
form.clash-event.co.kr
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
securedns1.planmygift.org
events.brightfocus.org
securedns1.planmygift.org
securedns1.planmygift.org
Certificate
The complete raw certificate details for support.brightfocus.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGtTCCBZ2gAwIBAgIQCrS8j4znQ4nATO8s6amARzANBgkqhkiG9w0BAQsFADBh MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMSAwHgYDVQQDExdHZW9UcnVzdCBFViBSU0EgQ0EgMjAx ODAeFw0xODEwMTgwMDAwMDBaFw0xOTA4MDgxMjAwMDBaMIIBFTEdMBsGA1UEDwwU UHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCVVMxJTAjBgsr BgEEAYI3PAIBAhMURGlzdHJpY3Qgb2YgQ29sdW1iaWExDzANBgNVBAUTBjczMTM4 NzELMAkGA1UEBhMCVVMxETAPBgNVBAgTCE1hcnlsYW5kMRMwEQYDVQQHEwpDbGFy a3NidXJnMT4wPAYDVQQKEzVCcmlnaHRmb2N1cyBGb3VuZGF0aW9uIChCcmlnaHRm b2N1cyBGb3VuZGF0aW9uLCBJbmMuKTEQMA4GA1UECxMHU3VwcG9ydDEgMB4GA1UE AxMXc3VwcG9ydC5icmlnaHRmb2N1cy5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCIHIFQmcoud+7ixbKNLeR5JIAO844jzIDPOqw685rzjzhKqEWL 0ZPN6ZBAGem/ap1ElPP4rHjaMsnX3LwDAtDV1V2BsxAbQlyD7c1EIVNjStPYr6zf +yevPHqx1FO828mv8SCDW89NcE1NLp4PoT7bApYhL/0OGmGoB/O/Kz44MkZuBJiy 0c39WmpzCsFzDfIt8dwhif/abRPr+gVcTu7vgLxK5rsjPTZY7SJi9UH9uC1QxZj3 PqKoF0IMj8PxNlGKjAlmntgijAk0q0HRLCr6wZabZESSk2zzQe15kN7iubNKDxNH w6H3kutqtUW9xCkD+YqxOrOqmVnNv3TZ1K0HAgMBAAGjggKxMIICrTAfBgNVHSME GDAWgBTKkmdSYd6u/LoiK38ch0wl+2+ZWDAdBgNVHQ4EFgQUcYEHrH+fan6XF4Qm DUGDsaM0yNEwIgYDVR0RBBswGYIXc3VwcG9ydC5icmlnaHRmb2N1cy5vcmcwDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBABgNV HR8EOTA3MDWgM6Axhi9odHRwOi8vY2RwLmdlb3RydXN0LmNvbS9HZW9UcnVzdEVW UlNBQ0EyMDE4LmNybDBLBgNVHSAERDBCMDcGCWCGSAGG/WwCATAqMCgGCCsGAQUF BwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAcGBWeBDAEBMHcGCCsG AQUFBwEBBGswaTAmBggrBgEFBQcwAYYaaHR0cDovL3N0YXR1cy5nZW90cnVzdC5j b20wPwYIKwYBBQUHMAKGM2h0dHA6Ly9jYWNlcnRzLmdlb3RydXN0LmNvbS9HZW9U cnVzdEVWUlNBQ0EyMDE4LmNydDAJBgNVHRMEAjAAMIIBAwYKKwYBBAHWeQIEAgSB 9ASB8QDvAHYAu9nfvB+KcbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFmiNg0 fAAABAMARzBFAiBDaNmnmbbMp2YskUXCoS4+Iv1Q7X21nyf9QjyUm9jHjgIhAOCU 9JDL3CviGmVejBnHkULdFE/1b+ni9zwRpWcn8kUPAHUAVhQGmi/XwuzT9eG9RLI+ x0Z2ubyZEVzA75SYVdaJ0N0AAAFmiNg00gAABAMARjBEAiBXStSNPlEMEfMFQF47 L2ru+StSjElmmypy4epAZJQMWgIgTQXduD+nBq0VaVh2XHYO3fBWL24hVzqQd/HA qXVhBtIwDQYJKoZIhvcNAQELBQADggEBAJSdYX9cn2POy/fsJ9XDo7nJjm2tniJK mkckhdrVB4tqzaSIrhhaDZ2oLFgF3WSJybK4kPB0I2K98VOPHYkYkh6eunUwNqjX +9JDmt7hRmRikYsadk+nKb8QCJAYAbs57W5sE/bGZ7QM7Dy1hWOBgnZrt1bdD8SD CDrSnZSUcifK5BkoX62pUeGZ9gXRy7JdpJGxOaeWdZ3bsFnEEa4CV3JZhLoTtsJF SyYfI1l08r7U8M8ges5k+MgCASVe2ofv5Wi1xcCPOXDKyC+Uzc1HDtv8IdC4xp/I Bc0igkFfehaDNGd150Hy6ZRCh83bjeqU7e5vS/hZHqw5Q7QbUMSuVuA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiByBUJnKLnfu4sWyjS3k eSSADvOOI8yAzzqsOvOa8484SqhFi9GTzemQQBnpv2qdRJTz+Kx42jLJ19y8AwLQ 1dVdgbMQG0Jcg+3NRCFTY0rT2K+s3/snrzx6sdRTvNvJr/Egg1vPTXBNTS6eD6E+ 2wKWIS/9DhphqAfzvys+ODJGbgSYstHN/VpqcwrBcw3yLfHcIYn/2m0T6/oFXE7u 74C8Sua7Iz02WO0iYvVB/bgtUMWY9z6iqBdCDI/D8TZRiowJZp7YIowJNKtB0Swq +sGWm2REkpNs80HteZDe4rmzSg8TR8Oh95LrarVFvcQpA/mKsTqzqplZzb902dSt BwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14230717858625635934947830357044068423 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust EV RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-08 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'District of Columbia' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '731387' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Maryland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Clarksburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Brightfocus Foundation (Brightfocus Foundation, Inc.)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Support' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'support.brightfocus.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17182465881894046560025160542254531076866122489060567162191785469607106435641697824588201048392367057571254801410015126794028050023315980068340015508630711272147481863408356798617891823603389487214763143492954637997881664752370705731830579409635068278049327262292003526094382522367095358991470485686852217106726532719606858199981465702677141514794526385758699742761198738256502593656167877705757096576141369948898245732555681588699718155246620215174623526303352361676383029211556024489031031597534454023340428077403312501837218381590561777193300748106776271621364445251144284777577923475640611271151476158183886859527 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ca92675261deaefcba222b7f1c874c25fb6f9958 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 718107ac7f9f6a7e971784260d4183b1a334c8d1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'support.brightfocus.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (57 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.geotrust.com/GeoTrustEVRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (107 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.geotrust.com/GeoTrustEVRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000016688d8347c000004030047304502204368d9a799b6cca7662c9145c2a12e3e22fd50ed7db59f27fd423c949bd8c78e022100e094f490cbdc2be21a655e8c19c79142dd144ff56fe9e2f73c11a56727f2450f0075005614069a2fd7c2ecd3f5e1bd44b23ec74676b9bc99115cc0ef949855d689d0dd0000016688d834d200000403004630440220574ad48d3e510c11f305405e3b2f6aeef92b528c49669b2a72e1ea4064940c5a02204d05ddb83fa706ad156958765c760eddf0562f6e21573a9077f1c0a9756106d2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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